Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers

A cyber threat intelligence chatbot that ingested 2200+ reports from vx-underground.

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups

A collection of snippets of codes and commands to make your life easier!

The pattern matching swiss knife

Tools and Techniques for Red Team / Penetration Testing

Tools and Techniques for Blue Team / Incident Response

Convert Sigma rules to Wazuh rules

Cryptography detection tool

Playbooks for SOC Analysts

A Chrome extension that will steal literally everything it can

Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enabling users to conduct malware analysis.

Attempts to decrypt JM Xorstr in some x64 binaries

Orange Cyberdefense mindmaps

This repo includes ChatGPT prompt curation to use ChatGPT better.

🔮 ChatGPT Desktop Application (Mac, Windows and Linux)

Incident Response documents and tooling

This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit

Official git repo for iodine dns tunnel

A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

IDA Pro Instruction Reference Plugin

Cobalt Strike Beacon configuration extractor and parser.

A wrapper for pip download in offline scenario.

IDAPython tool for creating automatic C++ virtual tables in IDA Pro

A collection of android security related resources

PoCs and tools for investigation of Windows process execution techniques